Senior Cloud Security Engineer

Umbra builds next-generation space systems that observe the Earth in unprecedented fidelity.

Our mission is to deliver global omniscience.

To stay ahead of climate change, geopolitical risk, and other major crises and issues, we need a global understanding of what is changing, where, and how fast. Umbra provides easy access to the highest quality commercial satellite data available, an indispensable tool for the growing number of organizations monitoring the Earth. We empower our customers to create solutions that inform, inspire, and address our planet's most pressing needs. We’re helping to create a new industry that has never meaningfully existed before.

As we continue to innovate, we are looking for a dedicated Senior Cloud Security Engineer to join our team. In this critical role, you will lead the charge in designing and implementing robust security measures across our cloud-based infrastructure. You will be responsible for ensuring the compliance, safety, and integrity of our systems while collaborating with engineering and operations teams to integrate security solutions seamlessly into our infrastructure.

Your expertise will help in evaluating cloud services and deploy security controls that adhere to best practices, safeguarding our applications and sensitive data from cyber threats. If you are passionate about cloud security and want to make a tangible impact on space technology, we invite you to apply!

Our aim is to hire this position to work in Umbra's Santa Barbara/Goleta, CA office.

Key Responsibilities

• Possess a deep understanding of cloud security architecture, threat modeling, and compliance frameworks, and make informed decisions about security trade-offs and risk management.
• Work with cross-functional teams to design, implement, and continuously improve secure DevOps pipelines and secure software development lifecycles (SDLC).
• Design and implement security automation tools and processes to improve system security and minimize manual intervention in securing software releases.
• In partnership with product development and information security team members, support risk assessment activities of cloud environments to identify & remediate vulnerabilities and evaluate security posture.
• Collaborate with engineering teams to define secure cloud architectures and provide guidance on cloud services and technologies.
• Be the continuous advocate for improving security best practices and champion for a security minded culture with all technical staff to increase overall awareness and capabilities in addressing security risks.
• Monitor cloud environments for security incidents and anomalies, responding promptly to alarms, events, and threats
• Assist in compliance efforts with regulations and standards such as NIST 800-171 and CMMC, and others relevant to cloud security. Implement security frameworks, best practices, and processes for cloud security operations.
• Take ownership and follow through, consistently and independently delivering results.
• Possess initiative and urgency, with a bias toward action.
• Provide training and resources to team members to enhance awareness of cloud security risks and best practices.
• Other professional duties as assigned.

Requirements

Required Qualifications

• Bachelor's degree in Computer Science, Cybersecurity, or a related field. Relevant experience can be a substitute for a degree.
• 6+ years of experience in cloud security, or similar role deeply integrated into DevOps environments, integrating security into CI/CD pipelines.
• Strong knowledge of cloud security principles and practices, particularly with major cloud service providers (AWS, Azure, GCP).
• Experience with security infrastructure tools such as IAM & access control, encryption & key management, vulnerability management and threat detection systems.
• Experience working with Infrastructure as Code (Terraform, Cloud Formation etc).
• Familiarity with Kubernetes and container security principles.
• Familiarity with compliance frameworks and standards relevant to cloud security.
• Excellent problem-solving skills and the ability to communicate complex concepts clearly to technical and non-technical audiences.
• A strong understanding of networking concepts, security protocols, and risk management principles.

Desired Qualifications

• Certifications such as Certified Cloud Security Professional (CCSP), AWS Certified Security – Specialty, or equivalent are a plus.
• Background in threat modeling, penetration testing, or security architecture reviews
• Experience working in the aerospace or defense sectors is an advantage.
• Experience with federal compliance frameworks (FedRAMP, CMMC)
• Strong analytical and strategic thinking skills.

Benefits

• Flexible Time Off, Sick, Family & Medical Leave
• Medical, Dental, Vision, Life, LTD, STD (employer funded)
• Vol Life, Critical Illness, Accidental, Hospital Indemnity, Pet Insurance (employee funded)
• 401k with 3% non-elective company contribution
• Stock Options
• Free Parking
• Free lunch daily in office

Umbra is an Equal Opportunity Employer. We do not discriminate in hiring on the basis of sex, gender identity, sexual orientation, race, color, religious creed, national origin, physical or mental disability, protected veteran status, or any other characteristic protected by federal, state, or local law.

Employment Eligibility Verification

In compliance with federal laws, all hired persons will be required to verify their identity and eligibility to work in the United States by completing the required Employment Eligibility Verification Form (I-9 Form) upon hire.

ITAR/EAR Requirements

This position may include access to technology and/or data that is subject to U.S. export controls pursuant to ITAR and EAR. To comply with federal export controls, all persons hired must be a U.S. citizen, U.S. national, U.S. lawful permanent resident, refugee or asylee as defined by 8 U.S.C. § 1324b(a)(3), or must otherwise be eligible to obtain the required authorizations from the U.S. Department of State and/or U.S. Department of Commerce as applicable. 

Pay Transparency
This job posting may cover multiple career levels. To ensure greater transparency, we provide base salary ranges for all roles, regardless of location. Our standard pay ranges are based on the role’s function and level, benchmarked against similar growth-stage companies. Compensation may vary based on geographical location, as certain regions may have different cost-of-living factors. The final offer will also be influenced by the candidate's skills, responsibilities, and relevant experience.

Compensation Range

The Compensation Range for this role is $140,000 - $175,000 DOE.